<?php

include dirname( __FILE__ )."/header.php";
include_once XOOPS_ROOT_PATH."/class/module.errorhandler.php";
$myts =& MyTextSanitizer::getInstance(); // MyTextSanitizer object

if(!empty($_POST['submit'])) {
    $eh = new ErrorHandler; //ErrorHandler object
    if(empty($xoopsUser)){
        $ratinguser = 0;
    }else{
        $ratinguser = $xoopsUser->getVar('uid');
    }

    //Make sure only 1 anonymous from an IP in a single day.
    $anonwaitdays = 1;
    $ip = getenv("REMOTE_ADDR");
    $lid = intval($_POST['lid']);
    $cid = intval($_POST['cid']);
    $rating = intval($_POST['rating']);

    // Check if Rating is Null
    if ($rating=="--") {
        redirect_header("ratefile.php?cid=".$cid."&amp;lid=".$lid."",4,_MD_NORATING);
        exit();
    }

    // Check if Download POSTER is voting (UNLESS Anonymous users allowed to post)
    if ($ratinguser != 0) {
        $result=$xoopsDB->query("SELECT submitter FROM ".$xoopsDB->prefix($mydirname."_downloads")." WHERE lid=$lid");
        while(list($ratinguserDB)=$xoopsDB->fetchRow($result)) {
            if ($ratinguserDB==$ratinguser) {
                redirect_header("index.php",4,_MD_CANTVOTEOWN);
                exit();
            }
        }

        // Check if REG user is trying to vote twice.
        $result=$xoopsDB->query("SELECT ratinguser FROM ".$xoopsDB->prefix($mydirname."_votedata")." WHERE lid=$lid");
        while(list($ratinguserDB)=$xoopsDB->fetchRow($result)) {
            if ($ratinguserDB==$ratinguser) {
                redirect_header("index.php",4,_MD_VOTEONCE);
                exit();
            }
        }

    } else {

        // Check if ANONYMOUS user is trying to vote more than once per day.
        $yesterday = (time()-(86400 * $anonwaitdays));
        $result=$xoopsDB->query("SELECT COUNT(*) FROM ".$xoopsDB->prefix($mydirname."_votedata")." WHERE lid=$lid AND ratinguser=0 AND ratinghostname = '$ip'  AND ratingtimestamp > $yesterday");
        list($anonvotecount) = $xoopsDB->fetchRow($result);
        if ($anonvotecount >= 1) {
            redirect_header("index.php",4,_MD_VOTEONCE);
            exit();
        }
    }

    //All is well.  Add to Line Item Rate to DB.
    $newid = $xoopsDB->genId($xoopsDB->prefix($mydirname."_votedata")."_ratingid_seq");
    $datetime = time();
    $sql = sprintf("INSERT INTO %s (ratingid, lid, ratinguser, rating, ratinghostname, ratingtimestamp) VALUES (%u, %u, %u, %u, '%s', %u)", $xoopsDB->prefix($mydirname."_votedata"), $newid, $lid, $ratinguser, $rating, $ip, $datetime);
    $xoopsDB->query($sql) or $eh("0013");

    //All is well.  Calculate Score & Add to Summary (for quick retrieval & sorting) to DB.
    updaterating($lid);
    $ratemessage = _MD_VOTEAPPRE."<br />".sprintf(_MD_THANKYOU, htmlspecialchars($xoopsConfig['sitename']));
    redirect_header("index.php",4,$ratemessage);
    exit();

} else {

    $xoopsOption['template_main'] = $mydirname.'_ratefile.html';
    include XOOPS_ROOT_PATH."/header.php";
//wanikoo
$mydownloads_module_header = '';
$mydownloads_module_header .= '
	<link rel="stylesheet" type="text/css" href="'.mydownloadsGetStyleURL("mydownloads.css").'" />
	<script src="'.mydownloadsGetStyleURL("mydownloads.js").'" type="text/javascript"></script>
	';
$mydownloads_module_header = $mydownloads_module_header; 
$xoopsTpl->assign('xoops_module_header', $mydownloads_module_header);
//

    $lid = intval($_GET['lid']);
    $cid = intval($_GET['cid']);
    $result=$xoopsDB->query("SELECT title FROM ".$xoopsDB->prefix($mydirname."_downloads")." WHERE lid=$lid");
    list($title) = $xoopsDB->fetchRow($result);
    $title = $myts->makeTboxData4Show($title);
    $xoopsTpl->assign('file', array('id' => $lid, 'cid' => $cid, 'title' => $myts->htmlSpecialChars($title)));
    $xoopsTpl->assign('lang_voteonce', _MD_VOTEONCE);
    $xoopsTpl->assign('lang_ratingscale', _MD_RATINGSCALE);
    $xoopsTpl->assign('lang_beobjective', _MD_BEOBJECTIVE);
    $xoopsTpl->assign('lang_donotvote', _MD_DONOTVOTE);
    $xoopsTpl->assign('lang_rateit', _MD_RATEIT);
    $xoopsTpl->assign('lang_cancel', _CANCEL);

    include_once dirname( __FILE__ )."/footer.php";

}

?>